CVE-2024-27311

Name of the Vulnerable Software and Affected Versions Zohocorp ManageEngine DDI Central versions 4001 and prior

Description The issue allows a user to upload new files to the server folder due to a directory traversal vulnerability.

Recommendations For versions 4001 and prior, consider restricting access to the server folder to minimize the risk of exploitation until a fix is available. As a temporary workaround, avoid using the upload functionality in the affected software until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.